Scratch this... I can see the problem - this script is intended to block connections from LAN through to known malware sources... the other one needs to prevent them from coming into the LAN in the first place (FORWARD vs INPUT)Hi,
I have implemented this script, and seems to work OK. Is it possible to include the Country & TorNode blocking that is covered in the first script on the wiki page by adding the appropriate URL's to the list file?